Tag: linux
-
Additional details on Outlaw Linux cryptomining botnet emerge
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/additional-details-on-outlaw-linux-cryptomining-botnet-emerge
-
Hunters International Linked to Hive Ransomware in Attacks on Windows, Linux, and ESXi Systems
by
in SecurityNewsHunters International, a ransomware group suspected to be a rebrand of the infamous Hive ransomware, has been linked to widespread attacks targeting Windows, Linux, FreeBSD, SunOS, and ESXi systems. Emerging in October 2023, the group has gained notoriety for its sophisticated techniques in data exfiltration and extortion. Cybersecurity researchers have noted similarities between Hunters International’s…
-
Hunters International Linked to Hive Ransomware in Attacks on Windows, Linux, and ESXi Systems
by
in SecurityNewsHunters International, a ransomware group suspected to be a rebrand of the infamous Hive ransomware, has been linked to widespread attacks targeting Windows, Linux, FreeBSD, SunOS, and ESXi systems. Emerging in October 2023, the group has gained notoriety for its sophisticated techniques in data exfiltration and extortion. Cybersecurity researchers have noted similarities between Hunters International’s…
-
Hackers Exploit Apache Tomcat Flaw to Hijack Servers and Steal SSH Credentials
by
in SecurityNews
Tags: apache, attack, botnet, credentials, cyber, data-breach, exploit, flaw, hacker, linux, vulnerability, windowsA newly discovered attack campaign has exposed vulnerabilities in Apache Tomcat servers, allowing hackers to hijack resources and steal SSH credentials. Researchers from Aqua Nautilus revealed that these attacks, which weaponized botnets within 30 hours of discovery, employ encrypted payloads and advanced persistence mechanisms to infiltrate systems running both Windows and Linux platforms. The attackers…
-
Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
by
in SecurityNewsCybersecurity researchers have shed light on an “auto-propagating” cryptocurrency mining botnet called Outlaw (aka Dota) that’s known for targeting SSH servers with weak credentials.”Outlaw is a Linux malware that relies on SSH brute-force attacks, cryptocurrency mining, and worm-like propagation to infect and maintain control over systems,” Elastic Security Labs said in a new analysis First…
-
No Frills, Big Impact: How Outlaw Malware Quietly Hijacks Linux Servers
by
in SecurityNewsSecurity researchers at Elastic Security Labs have released an in-depth analysis of a long-running Linux malware campaign known as Outlaw. Despite its unsophisticated code and crude attack methods, Outlaw remains remarkably persistent. This malware is a great example of how… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/outlaw-malware-linux-servers/
-
New Outlaw Linux Malware Using SSH brute-forcing To Maintain Botnet Activities for long Time
A persistent Linux malware known as >>Outlaw
-
Altgeräte bedrohen Sicherheit in Unternehmen
by
in SecurityNews
Tags: access, apache, authentication, botnet, bug, cisco, cloud, cve, cyberattack, dns, endpoint, firewall, Hardware, intelligence, Internet, ivanti, lazarus, linux, macOS, network, open-source, password, radius, ransomware, risk, router, sans, service, software, supply-chain, threat, update, vulnerabilitySchwachstellen in alten Netzwerkgeräten stellen ein erhebliches Sicherheitsrisiko für Unternehmen dar.Eine Analyse von Ciscos Threat-Intelligence-Team Talos zeigt, zwei der drei häufigsten Schwachstellen, auf die es Angreifer im Jahr 2024 abgesehen hatten, waren in alten Netzwerkgeräten zu finden. Das Problem ist, dass Hersteller dazu keine Patches mehr herausgeben.’Dies unterstreicht, wie wichtig es ist, veraltete Komponenten des…
-
Tax Season Threat Surge
Veriti Research has identified a significant rise in tax-related malware samples across multiple platforms. The research team discovered malware samples targeting Android, Linux, and Windows, all connected to the same adversary operating from a single IP address. We believe the attacker is running multiple parallel campaigns and using “Malware-as-a-Service” tools to target various platforms simultaneously,……
-
Privacy Roundup: Week 13 of Year 2025
by
in SecurityNews
Tags: access, ai, android, apple, application-security, breach, browser, cctv, chrome, cloud, cve, cybersecurity, data, detection, exploit, firmware, google, group, leak, linux, malware, microsoft, mobile, phishing, privacy, regulation, router, scam, service, software, technology, threat, tool, update, virus, vpn, vulnerability, zero-dayThis is a news item roundup of privacy or privacy-related news items for 23 MAR 2025 – 29 MAR 2025. Information and summaries provided here are as-is for warranty purposes. Note: You may see some traditional “security” content mixed-in here due to the close relationship between online privacy and cybersecurity – many things may overlap;…
-
Open Source statt Microsoft – So können Unternehmen Linux-Server günstig und sicher aufsetzen
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/open-source-und-linux-statt-windows-a-b4da32bf803c2dc7f035009a3c83d64b/
-
Linux Lite 7.4 Final Released: Enhanced GUI and Bug Fixes
by
in SecurityNewsLinux Lite, a popular lightweight Linux distribution aimed at making Linux accessible to beginners, has officially released itsLinux Lite 7.4 Finalversion. This release comes with several incremental updates that improve functionality, address bugs, and refine the user interface, ensuring a smoother experience for users. Although Linux Lite 7.4 is categorized as a minor release, it…
-
Linux Distribution Nitrux3.9.1 Releaed What’s New
Nitrux Linux, renowned for its innovative approach to desktop computing, has unveiled its latest release,Nitrux 3.9.1, codenamed >>mk.
-
Linux Distribution Nitrux3.9.1 Releaed What’s New
Nitrux Linux, renowned for its innovative approach to desktop computing, has unveiled its latest release,Nitrux 3.9.1, codenamed >>mk.
-
Both Haiku and Linux get new FOSS Nvidia drivers
by
in SecurityNewsThanks to Collabora’s work on Zink and NVK”¦ and indirectly to GPU-maker’s FOSS release, too First seen on theregister.com Jump to article: www.theregister.com/2025/03/28/haiku_linux_foss_nvidia_drivers/
-
Sicherheitslücken in Ubuntu Umgehung von Nutzer-Namespace-Beschränkungen
by
in SecurityNewsDie Qualys Threat Research Unit (TRU) hat drei Sicherheitslücken in den Nutzer-Namespace-Beschränkungen von Ubuntu entdeckt. Diese wurden am 15. Januar 2025 dem Ubuntu-Security-Team gemeldet. Die Schwachstellen ermöglichen es Angreifern, administrative Rechte innerhalb von Nutzer-Namespaces zu erlangen und so Kernel-Sicherheitslücken gezielt auszunutzen. Hintergrund zu Nutzer-Namespaces in Linux Linux erlaubt es unprivilegierten Nutzern, eigene Namespaces mit […]…
-
New Ubuntu Linux security bypasses require manual mitigations
by
in SecurityNewsThree security bypasses have been discovered in Ubuntu Linux’s unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-ubuntu-linux-security-bypasses-require-manual-mitigations/
-
EU OS drafts a locked-down Linux blueprint for Eurocrats
by
in SecurityNews
Tags: linuxThoughtful and considered “¦ even if it is based on an American distro First seen on theregister.com Jump to article: www.theregister.com/2025/03/25/eu_os_free_govt_desktop/
-
Exim UseFree Vulnerability Enables Privilege Escalation
by
in SecurityNewsA significant security threat has been uncovered in Exim, a popular open-source mail transfer agent (MTA) widely used in Linux distributions. Identified as CVE-2025-30232, this vulnerability allows for a potentially severe form of exploitation known as a use-after-free (UAF). This type of bug can lead to privilege escalation, posing substantial risks for administrators and users…
-
VMware plugs a high-risk vulnerability affecting its Windows-based virtualization
by
in SecurityNewsPatching is the only workaround: Broadcom advisory noted that the flaw does not have any workarounds and customers must apply patches rolled out on Tuesday to defend against exploitation.Affected products include all 11.x and 12.x versions of VMware tools for Windows, and are patched in the 12.5.1[1] rollout. VMware tools for Linux and macOS remain…
-
Credible nerd says stop using atop, doesn’t say why, everyone panics
by
in SecurityNews
Tags: linuxBad news about the Linux system monitor may be on the way First seen on theregister.com Jump to article: www.theregister.com/2025/03/26/uninstall_atop_for_now/
-
New Sophisticated Linux Backdoor Targets OT Systems via 0-Day RCE Exploit
by
in SecurityNewsResearchers at QiAnXin XLab have uncovered a sophisticated Linux-based backdoor dubbed OrpaCrab, specifically targeting industrial systems associated with ORPAK, a company involved in gas stations and oil transportation. The malware, which was uploaded to VirusTotal in January 2024 from the U.S., employs advanced techniques to evade detection and maintain persistence on compromised systems. Exploitation of…
-
Linus Torvalds forgot to release Linux 6.14 for a whole day
by
in SecurityNews
Tags: linux‘It’s just pure incompetence’ confesses penguin emperor First seen on theregister.com Jump to article: www.theregister.com/2025/03/25/linux_6_14_day_late/
-
ARACNE: LLM-Powered Pentesting Agent Executes Commands on Real Linux Shell Systems
by
in SecurityNewsResearchers have introduced ARACNE, a fully autonomous Large Language Model (LLM)-based pentesting agent designed to interact with SSH services on real Linux shell systems. ARACNE is engineered to execute commands autonomously, marking a significant advancement in the automation of cybersecurity testing. The agent’s architecture supports multiple LLM models, enhancing its flexibility and effectiveness in penetration…
-
Neue VanHelsing-Ransomware breitet sich rasant aus
by
in SecurityNews
Tags: authentication, backup, blockchain, dark-web, encryption, extortion, governance, government, linux, ransomware, service, usa, windowsDas neue Ransomware-Programm VanHelsing zielt auf Windows-, Linux-, BSD-, ARM- und ESXi-Systeme.Das neue RaaS-Projekt namens VanHelsing wurde erstmals am16. März von Forschern von CYFIRMA entdeckt, als Angreifer es für Verschlüsselung und doppelte Erpressung nutzten. Da es für Ziele der Gemeinschaft Unabhängiger Staaten (GUS) verboten ist, gehen die Security-Spezialisten davon aus, dass die Hintermänner aus Russland…
-
Linux Kernel 6.14 Released: Everything You Need to Know
by
in SecurityNewsLinus Torvalds released the Linux 6.14 kernel today after an unexpected quiet day yesterday, marking a new milestone in the Linux ecosystem. This version is set to power several upcoming Linux distribution releases, including Ubuntu 25.04 and Fedora 42. Linux 6.14 introduces a slew of exciting features that enhance performance, compatibility, and user experience across…
-
New VanHelsing ransomware targets Windows, ARM, ESXi systems
by
in SecurityNewsA new multi-platform ransomware-as-a-service (RaaS) operation named VanHelsing has emerged, targeting Windows, Linux, BSD, ARM, and ESXi systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-vanhelsing-ransomware-targets-windows-arm-esxi-systems/
-
Albabat Ransomware Expands Reach to Target Linux and macOS Platforms
by
in SecurityNewsA recent report from Trend Micro has revealed that a new variant of the Albabat ransomware now targets Linux and macOS platforms, marking a significant expansion in its capabilities. Previously limited to Windows systems, this updated strain demonstrates the evolving sophistication of ransomware threats. The malware is still under active development, with its multi-OS functionality…
-
New Rust-Based Linux Kernel Module Unveiled to Detect Rootkits
A recent development in Linux kernel security has led to the creation of a Rust-based kernel module designed to detect rootkits, a type of malware that can hide itself and other malicious activities from system administrators. This project, part of an internship at Thalium, focuses on enhancing malware detection capabilities within Linux systems, which are…